Federal authorities are warning of Russian hackers potentially targeting critical infrastructures in the US.
The Cybersecurity and Infrastructure Security Agency, the FBI, and the National Security Agency published a joint cybersecurity advice cyber operations sponsored by the Russian state in detail on Tuesday, including commonly used tactics, techniques and procedures.
The advisory also describes detection measures, instructions for responding to incidents and measures to limit damage.
Authorities said they released the memo to “warn organizations about cyber threats and to help the cybersecurity community reduce the risk of these threats”. However, no specific threats are mentioned.
“This overview is intended to help the cybersecurity community reduce the risk of these threats,” added the recommendation.
The new policy comes after White House national cyber director Chris Inglis testified in November that it was in Congress “Noticeable decline” in the number of cyber attacks against US companies that can be traced back to Russia.
Inglis said the reason for the decline is not clear.
However, in the past year there have been a number of cyberattacks against US companies by Russian-based corporations, including against Colonial Pipeline, the meat producer JBS USA and the IT company Kaseya.
The Biden Administration announced sanctions against Russia in April in response to the cyber espionage operation against the IT company SolarWinds, in which nine federal agencies and 100 private sectors were compromised.
The recommendation, released on Tuesday, calls on the cybersecurity community, especially defenders of critical infrastructure networks, to “assume an elevated state of consciousness and conduct a proactive threat search.”
It expressly recommends that companies prepare for potential violations, strengthen cyber attitudes and “increase organizational vigilance”.
#Federal #authorities #warning #Russian #hackers #targeting #critical #infrastructures